Bugcrowd’s baseline priority ratings for common security vulnerabilities
☆540May 6, 2026Updated last month
Alternatives and similar repositories for vulnerability-rating-taxonomy
Users that are interested in vulnerability-rating-taxonomy are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- (Unofficial) Ruby wrapper for the Bugcrowd HTTP API☆14Feb 27, 2017Updated 9 years ago
- Adama - Command and Invoker Pattern For Getting Things Done☆13Aug 10, 2023Updated 2 years ago
- ☆2,324Dec 8, 2023Updated 2 years ago
- Open source education content for the researcher community☆2,789Apr 13, 2022Updated 4 years ago
- Ruby library for interacting with Bugcrowd's VRT☆14Updated this week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆164Apr 24, 2025Updated last year
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆461May 10, 2019Updated 7 years ago
- Open Source Vulnerability Disclosure Framework. Maintained by Bugcrowd and Cipherlaw. Merged with https://github.com/disclose/dioterms.☆135Apr 11, 2021Updated 5 years ago
- The Bug Hunters Methodology☆4,348Aug 1, 2023Updated 2 years ago
- Repository to house markdown templates for researchers☆223Apr 1, 2026Updated 2 months ago
- Python implementation of a Bugcrowd api client.☆11Nov 20, 2025Updated 6 months ago
- Open-source vulnerability disclosure and bug bounty program database☆1,067Apr 23, 2026Updated last month
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,255Aug 14, 2024Updated last year
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆258Aug 30, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A toolset to track and organize output of reconnaissance tools☆347Jan 3, 2018Updated 8 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,491Sep 14, 2023Updated 2 years ago
- ☆13Aug 18, 2016Updated 9 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,805Apr 26, 2024Updated 2 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆565Aug 25, 2022Updated 3 years ago
- ☆210Updated this week
- A tool to evaluate Content Security Policies.☆71Jun 20, 2020Updated 5 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Feb 11, 2019Updated 7 years ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆847May 16, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆34Oct 1, 2019Updated 6 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆4,207Jul 31, 2024Updated last year
- The XSS Hunter service - a portable version of XSSHunter.com☆1,552Dec 7, 2022Updated 3 years ago
- Setup script for Regon-ng☆941Nov 17, 2020Updated 5 years ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,502Jan 9, 2025Updated last year
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,726Feb 8, 2025Updated last year
- A collection of hacks and one-off scripts☆2,492Mar 13, 2025Updated last year
- ☆842Nov 13, 2023Updated 2 years ago
- A Tool for Domain Flyovers☆5,941May 22, 2022Updated 4 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data…☆714Apr 4, 2026Updated 2 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,942Sep 27, 2021Updated 4 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆632Feb 5, 2019Updated 7 years ago
- BBT - Bug Bounty Tools (examples💡)☆1,896Apr 5, 2024Updated 2 years ago
- A Powerful Subdomain Takeover Tool☆966Oct 17, 2023Updated 2 years ago
- A python script that finds endpoints in JavaScript files☆4,382Apr 13, 2024Updated 2 years ago
- A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.☆5,699Mar 7, 2026Updated 3 months ago